Role Information
Details and metadata
b7ef99e8-10af-4a7c-8b15-5b6c352a8378
Change History
Track all modifications to this role since 2025-12-15 01:08:16+00:00
Updated On
Event Type
Summary & Details
2025-12-14 23:49:13
Initial Scan
Show full JSON
{
"properties": {
"roleName": "Azure Databases ARM Management Contributor",
"type": "BuiltInRole",
"description": "Manage Azure Databases",
"assignableScopes": [
"/"
],
"permissions": [
{
"actions": [
"Microsoft.Network/*/join/action",
"Microsoft.ManagedIdentity/userAssignedIdentities/*/read",
"Microsoft.ManagedIdentity/userAssignedIdentities/*/assign/action",
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"microsoft.insights/metrics/read",
"microsoft.Compute/virtualMachineScaleSets/networkInterfaces/read",
"Microsoft.ElasticSan/locations/asyncoperations/read",
"Microsoft.ElasticSan/elasticSans/PrivateEndpointConnectionsApproval/action",
"Microsoft.ElasticSan/skus/read",
"Microsoft.ElasticSan/operations/read",
"Microsoft.ElasticSan/elasticSans/read",
"Microsoft.ElasticSan/elasticSans/write",
"Microsoft.ElasticSan/elasticSans/delete",
"Microsoft.ElasticSan/elasticSans/volumegroups/read",
"Microsoft.ElasticSan/elasticSans/volumegroups/write",
"Microsoft.ElasticSan/elasticSans/volumegroups/delete",
"Microsoft.ElasticSan/elasticSans/volumegroups/volumes/read",
"Microsoft.ElasticSan/elasticSans/volumegroups/volumes/write",
"Microsoft.ElasticSan/elasticSans/volumegroups/volumes/delete",
"Microsoft.VirtualMachineImages/locations/operations/read",
"Microsoft.VirtualMachineImages/imageTemplates/write",
"Microsoft.VirtualMachineImages/imageTemplates/run/action",
"Microsoft.VirtualMachineImages/imageTemplates/read",
"Microsoft.Storage/storageAccounts/write",
"Microsoft.Storage/storageAccounts/sharedIdentities/write",
"Microsoft.Storage/storageAccounts/sharedIdentities/read",
"Microsoft.Storage/storageAccounts/regenerateKey/action",
"Microsoft.Storage/storageAccounts/read",
"Microsoft.Storage/storageAccounts/privateEndpointConnections/read",
"Microsoft.Storage/storageAccounts/listKeys/action",
"Microsoft.Storage/storageAccounts/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/write",
"Microsoft.Storage/register/action",
"Microsoft.Storage/operations/read",
"Microsoft.Storage/locations/usages/read",
"Microsoft.Storage/checkNameAvailability/read",
"Microsoft.Sql/register/action",
"Microsoft.ServiceFabric/register/action",
"Microsoft.ServiceFabric/locations/operations/read",
"Microsoft.ServiceFabric/locations/operationResults/read",
"Microsoft.ServiceFabric/clusters/write",
"Microsoft.ServiceFabric/clusters/read",
"Microsoft.ServiceFabric/clusters/delete",
"Microsoft.Security/assessments/read",
"Microsoft.Resources/tags/write",
"Microsoft.Resources/tags/read",
"Microsoft.Resources/subscriptions/resourcegroups/write",
"Microsoft.Resources/subscriptions/resourcegroups/read",
"Microsoft.Resources/subscriptions/resourceGroups/write",
"Microsoft.Resources/subscriptions/resourceGroups/resources/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Resources/subscriptions/resourceGroups/moveResources/action",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/providers/read",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/deployments/write",
"Microsoft.Resources/deployments/validate/action",
"Microsoft.Resources/deployments/read",
"Microsoft.Resources/deployments/operations/read",
"Microsoft.Resources/deployments/operationStatuses/read",
"Microsoft.Resources/deployments/delete",
"Microsoft.Subscription/cancel/action",
"Microsoft.Network/virtualNetworks/write",
"Microsoft.Network/virtualNetworks/virtualNetworkPeerings/write",
"Microsoft.Network/virtualNetworks/virtualNetworkPeerings/read",
"Microsoft.Network/virtualNetworks/virtualNetworkPeerings/delete",
"Microsoft.Network/virtualNetworks/subnets/write",
"Microsoft.Network/virtualNetworks/subnets/read",
"Microsoft.Network/virtualNetworks/subnets/delete",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/virtualNetworks/delete",
"Microsoft.Network/virtualNetworkGateways/delete",
"Microsoft.Network/trafficmanagerprofiles/*",
"Microsoft.Network/routeTables/write",
"Microsoft.Network/routeTables/delete",
"Microsoft.Network/register/action",
"Microsoft.Network/publicIPAddresses/write",
"Microsoft.Network/publicIPAddresses/read",
"Microsoft.Network/publicIPAddresses/delete",
"Microsoft.Network/privateEndpoints/write",
"Microsoft.Network/privateEndpoints/read",
"Microsoft.Network/privateEndpoints/privateDnsZoneGroups/write",
"Microsoft.Network/privateEndpoints/delete",
"Microsoft.Network/privateDnsOperationStatuses/read",
"Microsoft.Network/networkWatchers/read",
"Microsoft.Network/networkSecurityGroups/write",
"Microsoft.Network/networkSecurityGroups/securityRules/write",
"Microsoft.Network/networkSecurityGroups/securityRules/read",
"Microsoft.Network/networkSecurityGroups/read",
"Microsoft.Network/networkSecurityGroups/delete",
"Microsoft.Network/networkInterfaces/read",
"Microsoft.Network/locations/operations/read",
"Microsoft.Network/locations/operationResults/read",
"Microsoft.Network/loadBalancers/write",
"Microsoft.Network/loadBalancers/read",
"Microsoft.Network/loadBalancers/delete",
"Microsoft.Network/azureFirewalls/write",
"Microsoft.Network/azureFirewalls/read",
"Microsoft.Network/azureFirewalls/delete",
"Microsoft.Network/VirtualNetworkGateways/write",
"Microsoft.Network/VirtualNetworkGateways/read",
"Microsoft.Network/privateDnsZones/*",
"Microsoft.ManagedIdentity/userAssignedIdentities/write",
"Microsoft.ManagedIdentity/userAssignedIdentities/read",
"Microsoft.ManagedIdentity/userAssignedIdentities/delete",
"Microsoft.MachineLearningServices/locations/registryOperationsStatus/read",
"Microsoft.Insights/register/action",
"Microsoft.EventHub/register/action",
"Microsoft.EventHub/namespaces/read",
"Microsoft.EventHub/namespaces/delete",
"Microsoft.EventHub/locations/namespaceOperationResults/read",
"Microsoft.DocumentDB/locations/operationsStatus/read",
"Microsoft.DocumentDB/databaseAccounts/write",
"Microsoft.DocumentDB/databaseAccounts/read",
"Microsoft.DocumentDB/databaseAccounts/failoverPriorityChange/action",
"Microsoft.DocumentDB/databaseAccounts/delete",
"Microsoft.Compute/virtualMachineScaleSets/write",
"Microsoft.Compute/virtualMachineScaleSets/virtualMachines/write",
"Microsoft.Compute/virtualMachineScaleSets/virtualMachines/read",
"Microsoft.Compute/virtualMachineScaleSets/virtualMachines/instanceView/read",
"Microsoft.Compute/virtualMachineScaleSets/start/action",
"Microsoft.Compute/virtualMachineScaleSets/reimage/action",
"Microsoft.Compute/virtualMachineScaleSets/read",
"Microsoft.Compute/virtualMachineScaleSets/instanceView/read",
"Microsoft.Compute/virtualMachineScaleSets/extensions/read",
"Microsoft.Compute/virtualMachineScaleSets/delete/action",
"Microsoft.Compute/virtualMachineScaleSets/delete",
"Microsoft.Compute/virtualMachineScaleSets/deallocate/action",
"Microsoft.Compute/register/action",
"Microsoft.Compute/locations/operations/read",
"Microsoft.Compute/locations/capsOperations/read",
"Microsoft.Compute/locations/DiskOperations/read",
"Microsoft.Compute/galleries/write",
"Microsoft.Compute/galleries/read",
"Microsoft.Compute/galleries/images/write",
"Microsoft.Compute/galleries/images/read",
"Microsoft.Compute/disks/write",
"Microsoft.Compute/disks/read",
"Microsoft.Compute/disks/delete",
"Microsoft.ClassicStorage/storageAccounts/validateMigration/action",
"Microsoft.ClassicStorage/storageAccounts/prepareMigration/action",
"Microsoft.ClassicStorage/storageAccounts/operationStatuses/read",
"Microsoft.ClassicStorage/storageAccounts/listKeys/action",
"Microsoft.ClassicStorage/storageAccounts/commitMigration/action",
"Microsoft.ClassicStorage/storageAccounts/abortMigration/action",
"Microsoft.ClassicNetwork/virtualNetworks/read",
"Microsoft.ClassicNetwork/register/action",
"Microsoft.Chaos/targets/write",
"Microsoft.Chaos/targets/capabilities/write",
"Microsoft.Chaos/register/action",
"Microsoft.Chaos/experiments/write",
"Microsoft.Authorization/roleAssignments/write",
"Microsoft.Authorization/roleAssignments/delete",
"Microsoft.Authorization/locks/delete",
"Microsoft.Authorization/locks/write",
"Microsoft.Network/dnsZones/*",
"Microsoft.Compute/galleries/images/versions/read",
"Microsoft.Network/firewallPolicies/ruleCollectionGroups/write",
"Microsoft.Network/locations/*/read",
"Microsoft.DocumentDB/databaseAccounts/privateEndpointConnectionsApproval/action",
"Microsoft.Storage/storageAccounts/PrivateEndpointConnectionsApproval/action",
"Microsoft.Network/virtualNetworks/peer/action",
"Microsoft.DocumentDB/databaseAccounts/listKeys/action",
"Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers/write",
"Microsoft.DocumentDB/databaseAccounts/sqlDatabases/write",
"Microsoft.DocumentDB/databaseAccounts/sqlRoleAssignments/write",
"Microsoft.ClassicStorage/storageAccounts/read",
"Microsoft.Resources/subscriptions/resourcegroups/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/delete",
"Microsoft.Storage/storageAccounts/blobServices/read",
"Microsoft.Storage/storageAccounts/blobServices/write",
"Microsoft.VirtualMachineImages/imageTemplates/delete",
"Microsoft.Network/firewallPolicies/write",
"Microsoft.Batch/register/action",
"Microsoft.ElasticSan/register/action",
"Microsoft.VirtualMachineImages/register/action",
"Microsoft.Network/networkSecurityPerimeters/read",
"Microsoft.Network/networkSecurityPerimeters/write",
"Microsoft.Network/networkSecurityPerimeters/delete",
"Microsoft.Network/networkSecurityPerimeters/profiles/read",
"Microsoft.Network/networkSecurityPerimeters/profiles/write",
"Microsoft.Network/networkSecurityPerimeters/profiles/delete",
"Microsoft.Network/networkSecurityPerimeters/profiles/accessRules/read",
"Microsoft.Network/networkSecurityPerimeters/profiles/accessRules/write",
"Microsoft.Network/networkSecurityPerimeters/profiles/accessRules/delete",
"Microsoft.Network/networkSecurityPerimeters/resourceAssociations/read",
"Microsoft.Network/networkSecurityPerimeters/resourceAssociations/write",
"Microsoft.Network/networkSecurityPerimeters/resourceAssociations/delete"
],
"notActions": [],
"dataActions": [],
"notDataActions": [],
"Condition": "((!(ActionMatches{'Microsoft.Authorization/roleAssignments/write'})) OR (@Request[Microsoft.Authorization/roleAssignments:RoleDefinitionId] ForAnyOfAnyValues:GuidEquals{ba92f5b4-2d11-453d-a403-e96b0029c9fe, 2a2b9908-6ea1-4ae2-8e65-a410df84e7d1, 5bd9cd88-fe45-4216-938b-f97437e15450, 230815da-be43-4aae-9cb4-875f7bd000aa, 4d97b98b-1d4f-4787-a291-c67834d212e7})) AND ((!(ActionMatches{'Microsoft.Authorization/roleAssignments/delete'})) OR (@Resource[Microsoft.Authorization/roleAssignments:RoleDefinitionId] ForAnyOfAnyValues:GuidEquals{ba92f5b4-2d11-453d-a403-e96b0029c9fe, 2a2b9908-6ea1-4ae2-8e65-a410df84e7d1, b24988ac-6180-42a0-ab88-20f7382dd24c, 5bd9cd88-fe45-4216-938b-f97437e15450, 230815da-be43-4aae-9cb4-875f7bd000aa, 4d97b98b-1d4f-4787-a291-c67834d212e7}))",
"ConditionVersion": "2.0"
}
],
"createdOn": "2024-07-16T15:12:09.853Z",
"updatedOn": "2025-10-01T15:36:17.02Z",
"createdBy": null,
"updatedBy": null
},
"id": "/providers/Microsoft.Authorization/roleDefinitions/b7ef99e8-10af-4a7c-8b15-5b6c352a8378",
"type": "Microsoft.Authorization/roleDefinitions",
"name": "b7ef99e8-10af-4a7c-8b15-5b6c352a8378"
}
2025-12-14 23:49:13
Initial Scan
View details
{
"properties": {
"roleName": "Azure Databases ARM Management Contributor",
"type": "BuiltInRole",
"description": "Manage Azure Databases",
"assignableScopes": [
"/"
],
"permissions": [
{
"actions": [
"Microsoft.Network/*/join/action",
"Microsoft.ManagedIdentity/userAssignedIdentities/*/read",
"Microsoft.ManagedIdentity/userAssignedIdentities/*/assign/action",
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"microsoft.insights/metrics/read",
"microsoft.Compute/virtualMachineScaleSets/networkInterfaces/read",
"Microsoft.ElasticSan/locations/asyncoperations/read",
"Microsoft.ElasticSan/elasticSans/PrivateEndpointConnectionsApproval/action",
"Microsoft.ElasticSan/skus/read",
"Microsoft.ElasticSan/operations/read",
"Microsoft.ElasticSan/elasticSans/read",
"Microsoft.ElasticSan/elasticSans/write",
"Microsoft.ElasticSan/elasticSans/delete",
"Microsoft.ElasticSan/elasticSans/volumegroups/read",
"Microsoft.ElasticSan/elasticSans/volumegroups/write",
"Microsoft.ElasticSan/elasticSans/volumegroups/delete",
"Microsoft.ElasticSan/elasticSans/volumegroups/volumes/read",
"Microsoft.ElasticSan/elasticSans/volumegroups/volumes/write",
"Microsoft.ElasticSan/elasticSans/volumegroups/volumes/delete",
"Microsoft.VirtualMachineImages/locations/operations/read",
"Microsoft.VirtualMachineImages/imageTemplates/write",
"Microsoft.VirtualMachineImages/imageTemplates/run/action",
"Microsoft.VirtualMachineImages/imageTemplates/read",
"Microsoft.Storage/storageAccounts/write",
"Microsoft.Storage/storageAccounts/sharedIdentities/write",
"Microsoft.Storage/storageAccounts/sharedIdentities/read",
"Microsoft.Storage/storageAccounts/regenerateKey/action",
"Microsoft.Storage/storageAccounts/read",
"Microsoft.Storage/storageAccounts/privateEndpointConnections/read",
"Microsoft.Storage/storageAccounts/listKeys/action",
"Microsoft.Storage/storageAccounts/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/write",
"Microsoft.Storage/register/action",
"Microsoft.Storage/operations/read",
"Microsoft.Storage/locations/usages/read",
"Microsoft.Storage/checkNameAvailability/read",
"Microsoft.Sql/register/action",
"Microsoft.ServiceFabric/register/action",
"Microsoft.ServiceFabric/locations/operations/read",
"Microsoft.ServiceFabric/locations/operationResults/read",
"Microsoft.ServiceFabric/clusters/write",
"Microsoft.ServiceFabric/clusters/read",
"Microsoft.ServiceFabric/clusters/delete",
"Microsoft.Security/assessments/read",
"Microsoft.Resources/tags/write",
"Microsoft.Resources/tags/read",
"Microsoft.Resources/subscriptions/resourcegroups/write",
"Microsoft.Resources/subscriptions/resourcegroups/read",
"Microsoft.Resources/subscriptions/resourceGroups/write",
"Microsoft.Resources/subscriptions/resourceGroups/resources/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Resources/subscriptions/resourceGroups/moveResources/action",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/providers/read",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/deployments/write",
"Microsoft.Resources/deployments/validate/action",
"Microsoft.Resources/deployments/read",
"Microsoft.Resources/deployments/operations/read",
"Microsoft.Resources/deployments/operationStatuses/read",
"Microsoft.Resources/deployments/delete",
"Microsoft.Subscription/cancel/action",
"Microsoft.Network/virtualNetworks/write",
"Microsoft.Network/virtualNetworks/virtualNetworkPeerings/write",
"Microsoft.Network/virtualNetworks/virtualNetworkPeerings/read",
"Microsoft.Network/virtualNetworks/virtualNetworkPeerings/delete",
"Microsoft.Network/virtualNetworks/subnets/write",
"Microsoft.Network/virtualNetworks/subnets/read",
"Microsoft.Network/virtualNetworks/subnets/delete",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/virtualNetworks/delete",
"Microsoft.Network/virtualNetworkGateways/delete",
"Microsoft.Network/trafficmanagerprofiles/*",
"Microsoft.Network/routeTables/write",
"Microsoft.Network/routeTables/delete",
"Microsoft.Network/register/action",
"Microsoft.Network/publicIPAddresses/write",
"Microsoft.Network/publicIPAddresses/read",
"Microsoft.Network/publicIPAddresses/delete",
"Microsoft.Network/privateEndpoints/write",
"Microsoft.Network/privateEndpoints/read",
"Microsoft.Network/privateEndpoints/privateDnsZoneGroups/write",
"Microsoft.Network/privateEndpoints/delete",
"Microsoft.Network/privateDnsOperationStatuses/read",
"Microsoft.Network/networkWatchers/read",
"Microsoft.Network/networkSecurityGroups/write",
"Microsoft.Network/networkSecurityGroups/securityRules/write",
"Microsoft.Network/networkSecurityGroups/securityRules/read",
"Microsoft.Network/networkSecurityGroups/read",
"Microsoft.Network/networkSecurityGroups/delete",
"Microsoft.Network/networkInterfaces/read",
"Microsoft.Network/locations/operations/read",
"Microsoft.Network/locations/operationResults/read",
"Microsoft.Network/loadBalancers/write",
"Microsoft.Network/loadBalancers/read",
"Microsoft.Network/loadBalancers/delete",
"Microsoft.Network/azureFirewalls/write",
"Microsoft.Network/azureFirewalls/read",
"Microsoft.Network/azureFirewalls/delete",
"Microsoft.Network/VirtualNetworkGateways/write",
"Microsoft.Network/VirtualNetworkGateways/read",
"Microsoft.Network/privateDnsZones/*",
"Microsoft.ManagedIdentity/userAssignedIdentities/write",
"Microsoft.ManagedIdentity/userAssignedIdentities/read",
"Microsoft.ManagedIdentity/userAssignedIdentities/delete",
"Microsoft.MachineLearningServices/locations/registryOperationsStatus/read",
"Microsoft.Insights/register/action",
"Microsoft.EventHub/register/action",
"Microsoft.EventHub/namespaces/read",
"Microsoft.EventHub/namespaces/delete",
"Microsoft.EventHub/locations/namespaceOperationResults/read",
"Microsoft.DocumentDB/locations/operationsStatus/read",
"Microsoft.DocumentDB/databaseAccounts/write",
"Microsoft.DocumentDB/databaseAccounts/read",
"Microsoft.DocumentDB/databaseAccounts/failoverPriorityChange/action",
"Microsoft.DocumentDB/databaseAccounts/delete",
"Microsoft.Compute/virtualMachineScaleSets/write",
"Microsoft.Compute/virtualMachineScaleSets/virtualMachines/write",
"Microsoft.Compute/virtualMachineScaleSets/virtualMachines/read",
"Microsoft.Compute/virtualMachineScaleSets/virtualMachines/instanceView/read",
"Microsoft.Compute/virtualMachineScaleSets/start/action",
"Microsoft.Compute/virtualMachineScaleSets/reimage/action",
"Microsoft.Compute/virtualMachineScaleSets/read",
"Microsoft.Compute/virtualMachineScaleSets/instanceView/read",
"Microsoft.Compute/virtualMachineScaleSets/extensions/read",
"Microsoft.Compute/virtualMachineScaleSets/delete/action",
"Microsoft.Compute/virtualMachineScaleSets/delete",
"Microsoft.Compute/virtualMachineScaleSets/deallocate/action",
"Microsoft.Compute/register/action",
"Microsoft.Compute/locations/operations/read",
"Microsoft.Compute/locations/capsOperations/read",
"Microsoft.Compute/locations/DiskOperations/read",
"Microsoft.Compute/galleries/write",
"Microsoft.Compute/galleries/read",
"Microsoft.Compute/galleries/images/write",
"Microsoft.Compute/galleries/images/read",
"Microsoft.Compute/disks/write",
"Microsoft.Compute/disks/read",
"Microsoft.Compute/disks/delete",
"Microsoft.ClassicStorage/storageAccounts/validateMigration/action",
"Microsoft.ClassicStorage/storageAccounts/prepareMigration/action",
"Microsoft.ClassicStorage/storageAccounts/operationStatuses/read",
"Microsoft.ClassicStorage/storageAccounts/listKeys/action",
"Microsoft.ClassicStorage/storageAccounts/commitMigration/action",
"Microsoft.ClassicStorage/storageAccounts/abortMigration/action",
"Microsoft.ClassicNetwork/virtualNetworks/read",
"Microsoft.ClassicNetwork/register/action",
"Microsoft.Chaos/targets/write",
"Microsoft.Chaos/targets/capabilities/write",
"Microsoft.Chaos/register/action",
"Microsoft.Chaos/experiments/write",
"Microsoft.Authorization/roleAssignments/write",
"Microsoft.Authorization/roleAssignments/delete",
"Microsoft.Authorization/locks/delete",
"Microsoft.Authorization/locks/write",
"Microsoft.Network/dnsZones/*",
"Microsoft.Compute/galleries/images/versions/read",
"Microsoft.Network/firewallPolicies/ruleCollectionGroups/write",
"Microsoft.Network/locations/*/read",
"Microsoft.DocumentDB/databaseAccounts/privateEndpointConnectionsApproval/action",
"Microsoft.Storage/storageAccounts/PrivateEndpointConnectionsApproval/action",
"Microsoft.Network/virtualNetworks/peer/action",
"Microsoft.DocumentDB/databaseAccounts/listKeys/action",
"Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers/write",
"Microsoft.DocumentDB/databaseAccounts/sqlDatabases/write",
"Microsoft.DocumentDB/databaseAccounts/sqlRoleAssignments/write",
"Microsoft.ClassicStorage/storageAccounts/read",
"Microsoft.Resources/subscriptions/resourcegroups/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/delete",
"Microsoft.Storage/storageAccounts/blobServices/read",
"Microsoft.Storage/storageAccounts/blobServices/write",
"Microsoft.VirtualMachineImages/imageTemplates/delete",
"Microsoft.Network/firewallPolicies/write",
"Microsoft.Batch/register/action",
"Microsoft.ElasticSan/register/action",
"Microsoft.VirtualMachineImages/register/action",
"Microsoft.Network/networkSecurityPerimeters/read",
"Microsoft.Network/networkSecurityPerimeters/write",
"Microsoft.Network/networkSecurityPerimeters/delete",
"Microsoft.Network/networkSecurityPerimeters/profiles/read",
"Microsoft.Network/networkSecurityPerimeters/profiles/write",
"Microsoft.Network/networkSecurityPerimeters/profiles/delete",
"Microsoft.Network/networkSecurityPerimeters/profiles/accessRules/read",
"Microsoft.Network/networkSecurityPerimeters/profiles/accessRules/write",
"Microsoft.Network/networkSecurityPerimeters/profiles/accessRules/delete",
"Microsoft.Network/networkSecurityPerimeters/resourceAssociations/read",
"Microsoft.Network/networkSecurityPerimeters/resourceAssociations/write",
"Microsoft.Network/networkSecurityPerimeters/resourceAssociations/delete"
],
"notActions": [],
"dataActions": [],
"notDataActions": [],
"Condition": "((!(ActionMatches{'Microsoft.Authorization/roleAssignments/write'})) OR (@Request[Microsoft.Authorization/roleAssignments:RoleDefinitionId] ForAnyOfAnyValues:GuidEquals{ba92f5b4-2d11-453d-a403-e96b0029c9fe, 2a2b9908-6ea1-4ae2-8e65-a410df84e7d1, 5bd9cd88-fe45-4216-938b-f97437e15450, 230815da-be43-4aae-9cb4-875f7bd000aa, 4d97b98b-1d4f-4787-a291-c67834d212e7})) AND ((!(ActionMatches{'Microsoft.Authorization/roleAssignments/delete'})) OR (@Resource[Microsoft.Authorization/roleAssignments:RoleDefinitionId] ForAnyOfAnyValues:GuidEquals{ba92f5b4-2d11-453d-a403-e96b0029c9fe, 2a2b9908-6ea1-4ae2-8e65-a410df84e7d1, b24988ac-6180-42a0-ab88-20f7382dd24c, 5bd9cd88-fe45-4216-938b-f97437e15450, 230815da-be43-4aae-9cb4-875f7bd000aa, 4d97b98b-1d4f-4787-a291-c67834d212e7}))",
"ConditionVersion": "2.0"
}
],
"createdOn": "2024-07-16T15:12:09.853Z",
"updatedOn": "2025-10-01T15:36:17.02Z",
"createdBy": null,
"updatedBy": null
},
"id": "/providers/Microsoft.Authorization/roleDefinitions/b7ef99e8-10af-4a7c-8b15-5b6c352a8378",
"type": "Microsoft.Authorization/roleDefinitions",
"name": "b7ef99e8-10af-4a7c-8b15-5b6c352a8378"
}
Latest Role JSON
Raw definition from Azure
{
"properties": {
"roleName": "Azure Databases ARM Management Contributor",
"type": "BuiltInRole",
"description": "Manage Azure Databases",
"assignableScopes": [
"/"
],
"permissions": [
{
"actions": [
"Microsoft.Network/*/join/action",
"Microsoft.ManagedIdentity/userAssignedIdentities/*/read",
"Microsoft.ManagedIdentity/userAssignedIdentities/*/assign/action",
"Microsoft.Authorization/*/read",
"Microsoft.Insights/alertRules/*",
"Microsoft.Resources/deployments/*",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"microsoft.insights/metrics/read",
"microsoft.Compute/virtualMachineScaleSets/networkInterfaces/read",
"Microsoft.ElasticSan/locations/asyncoperations/read",
"Microsoft.ElasticSan/elasticSans/PrivateEndpointConnectionsApproval/action",
"Microsoft.ElasticSan/skus/read",
"Microsoft.ElasticSan/operations/read",
"Microsoft.ElasticSan/elasticSans/read",
"Microsoft.ElasticSan/elasticSans/write",
"Microsoft.ElasticSan/elasticSans/delete",
"Microsoft.ElasticSan/elasticSans/volumegroups/read",
"Microsoft.ElasticSan/elasticSans/volumegroups/write",
"Microsoft.ElasticSan/elasticSans/volumegroups/delete",
"Microsoft.ElasticSan/elasticSans/volumegroups/volumes/read",
"Microsoft.ElasticSan/elasticSans/volumegroups/volumes/write",
"Microsoft.ElasticSan/elasticSans/volumegroups/volumes/delete",
"Microsoft.VirtualMachineImages/locations/operations/read",
"Microsoft.VirtualMachineImages/imageTemplates/write",
"Microsoft.VirtualMachineImages/imageTemplates/run/action",
"Microsoft.VirtualMachineImages/imageTemplates/read",
"Microsoft.Storage/storageAccounts/write",
"Microsoft.Storage/storageAccounts/sharedIdentities/write",
"Microsoft.Storage/storageAccounts/sharedIdentities/read",
"Microsoft.Storage/storageAccounts/regenerateKey/action",
"Microsoft.Storage/storageAccounts/read",
"Microsoft.Storage/storageAccounts/privateEndpointConnections/read",
"Microsoft.Storage/storageAccounts/listKeys/action",
"Microsoft.Storage/storageAccounts/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/write",
"Microsoft.Storage/register/action",
"Microsoft.Storage/operations/read",
"Microsoft.Storage/locations/usages/read",
"Microsoft.Storage/checkNameAvailability/read",
"Microsoft.Sql/register/action",
"Microsoft.ServiceFabric/register/action",
"Microsoft.ServiceFabric/locations/operations/read",
"Microsoft.ServiceFabric/locations/operationResults/read",
"Microsoft.ServiceFabric/clusters/write",
"Microsoft.ServiceFabric/clusters/read",
"Microsoft.ServiceFabric/clusters/delete",
"Microsoft.Security/assessments/read",
"Microsoft.Resources/tags/write",
"Microsoft.Resources/tags/read",
"Microsoft.Resources/subscriptions/resourcegroups/write",
"Microsoft.Resources/subscriptions/resourcegroups/read",
"Microsoft.Resources/subscriptions/resourceGroups/write",
"Microsoft.Resources/subscriptions/resourceGroups/resources/read",
"Microsoft.Resources/subscriptions/resourceGroups/read",
"Microsoft.Resources/subscriptions/resourceGroups/moveResources/action",
"Microsoft.Resources/subscriptions/read",
"Microsoft.Resources/subscriptions/providers/read",
"Microsoft.Resources/subscriptions/operationresults/read",
"Microsoft.Resources/deployments/write",
"Microsoft.Resources/deployments/validate/action",
"Microsoft.Resources/deployments/read",
"Microsoft.Resources/deployments/operations/read",
"Microsoft.Resources/deployments/operationStatuses/read",
"Microsoft.Resources/deployments/delete",
"Microsoft.Subscription/cancel/action",
"Microsoft.Network/virtualNetworks/write",
"Microsoft.Network/virtualNetworks/virtualNetworkPeerings/write",
"Microsoft.Network/virtualNetworks/virtualNetworkPeerings/read",
"Microsoft.Network/virtualNetworks/virtualNetworkPeerings/delete",
"Microsoft.Network/virtualNetworks/subnets/write",
"Microsoft.Network/virtualNetworks/subnets/read",
"Microsoft.Network/virtualNetworks/subnets/delete",
"Microsoft.Network/virtualNetworks/read",
"Microsoft.Network/virtualNetworks/delete",
"Microsoft.Network/virtualNetworkGateways/delete",
"Microsoft.Network/trafficmanagerprofiles/*",
"Microsoft.Network/routeTables/write",
"Microsoft.Network/routeTables/delete",
"Microsoft.Network/register/action",
"Microsoft.Network/publicIPAddresses/write",
"Microsoft.Network/publicIPAddresses/read",
"Microsoft.Network/publicIPAddresses/delete",
"Microsoft.Network/privateEndpoints/write",
"Microsoft.Network/privateEndpoints/read",
"Microsoft.Network/privateEndpoints/privateDnsZoneGroups/write",
"Microsoft.Network/privateEndpoints/delete",
"Microsoft.Network/privateDnsOperationStatuses/read",
"Microsoft.Network/networkWatchers/read",
"Microsoft.Network/networkSecurityGroups/write",
"Microsoft.Network/networkSecurityGroups/securityRules/write",
"Microsoft.Network/networkSecurityGroups/securityRules/read",
"Microsoft.Network/networkSecurityGroups/read",
"Microsoft.Network/networkSecurityGroups/delete",
"Microsoft.Network/networkInterfaces/read",
"Microsoft.Network/locations/operations/read",
"Microsoft.Network/locations/operationResults/read",
"Microsoft.Network/loadBalancers/write",
"Microsoft.Network/loadBalancers/read",
"Microsoft.Network/loadBalancers/delete",
"Microsoft.Network/azureFirewalls/write",
"Microsoft.Network/azureFirewalls/read",
"Microsoft.Network/azureFirewalls/delete",
"Microsoft.Network/VirtualNetworkGateways/write",
"Microsoft.Network/VirtualNetworkGateways/read",
"Microsoft.Network/privateDnsZones/*",
"Microsoft.ManagedIdentity/userAssignedIdentities/write",
"Microsoft.ManagedIdentity/userAssignedIdentities/read",
"Microsoft.ManagedIdentity/userAssignedIdentities/delete",
"Microsoft.MachineLearningServices/locations/registryOperationsStatus/read",
"Microsoft.Insights/register/action",
"Microsoft.EventHub/register/action",
"Microsoft.EventHub/namespaces/read",
"Microsoft.EventHub/namespaces/delete",
"Microsoft.EventHub/locations/namespaceOperationResults/read",
"Microsoft.DocumentDB/locations/operationsStatus/read",
"Microsoft.DocumentDB/databaseAccounts/write",
"Microsoft.DocumentDB/databaseAccounts/read",
"Microsoft.DocumentDB/databaseAccounts/failoverPriorityChange/action",
"Microsoft.DocumentDB/databaseAccounts/delete",
"Microsoft.Compute/virtualMachineScaleSets/write",
"Microsoft.Compute/virtualMachineScaleSets/virtualMachines/write",
"Microsoft.Compute/virtualMachineScaleSets/virtualMachines/read",
"Microsoft.Compute/virtualMachineScaleSets/virtualMachines/instanceView/read",
"Microsoft.Compute/virtualMachineScaleSets/start/action",
"Microsoft.Compute/virtualMachineScaleSets/reimage/action",
"Microsoft.Compute/virtualMachineScaleSets/read",
"Microsoft.Compute/virtualMachineScaleSets/instanceView/read",
"Microsoft.Compute/virtualMachineScaleSets/extensions/read",
"Microsoft.Compute/virtualMachineScaleSets/delete/action",
"Microsoft.Compute/virtualMachineScaleSets/delete",
"Microsoft.Compute/virtualMachineScaleSets/deallocate/action",
"Microsoft.Compute/register/action",
"Microsoft.Compute/locations/operations/read",
"Microsoft.Compute/locations/capsOperations/read",
"Microsoft.Compute/locations/DiskOperations/read",
"Microsoft.Compute/galleries/write",
"Microsoft.Compute/galleries/read",
"Microsoft.Compute/galleries/images/write",
"Microsoft.Compute/galleries/images/read",
"Microsoft.Compute/disks/write",
"Microsoft.Compute/disks/read",
"Microsoft.Compute/disks/delete",
"Microsoft.ClassicStorage/storageAccounts/validateMigration/action",
"Microsoft.ClassicStorage/storageAccounts/prepareMigration/action",
"Microsoft.ClassicStorage/storageAccounts/operationStatuses/read",
"Microsoft.ClassicStorage/storageAccounts/listKeys/action",
"Microsoft.ClassicStorage/storageAccounts/commitMigration/action",
"Microsoft.ClassicStorage/storageAccounts/abortMigration/action",
"Microsoft.ClassicNetwork/virtualNetworks/read",
"Microsoft.ClassicNetwork/register/action",
"Microsoft.Chaos/targets/write",
"Microsoft.Chaos/targets/capabilities/write",
"Microsoft.Chaos/register/action",
"Microsoft.Chaos/experiments/write",
"Microsoft.Authorization/roleAssignments/write",
"Microsoft.Authorization/roleAssignments/delete",
"Microsoft.Authorization/locks/delete",
"Microsoft.Authorization/locks/write",
"Microsoft.Network/dnsZones/*",
"Microsoft.Compute/galleries/images/versions/read",
"Microsoft.Network/firewallPolicies/ruleCollectionGroups/write",
"Microsoft.Network/locations/*/read",
"Microsoft.DocumentDB/databaseAccounts/privateEndpointConnectionsApproval/action",
"Microsoft.Storage/storageAccounts/PrivateEndpointConnectionsApproval/action",
"Microsoft.Network/virtualNetworks/peer/action",
"Microsoft.DocumentDB/databaseAccounts/listKeys/action",
"Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers/write",
"Microsoft.DocumentDB/databaseAccounts/sqlDatabases/write",
"Microsoft.DocumentDB/databaseAccounts/sqlRoleAssignments/write",
"Microsoft.ClassicStorage/storageAccounts/read",
"Microsoft.Resources/subscriptions/resourcegroups/delete",
"Microsoft.Storage/storageAccounts/blobServices/containers/delete",
"Microsoft.Storage/storageAccounts/blobServices/read",
"Microsoft.Storage/storageAccounts/blobServices/write",
"Microsoft.VirtualMachineImages/imageTemplates/delete",
"Microsoft.Network/firewallPolicies/write",
"Microsoft.Batch/register/action",
"Microsoft.ElasticSan/register/action",
"Microsoft.VirtualMachineImages/register/action",
"Microsoft.Network/networkSecurityPerimeters/read",
"Microsoft.Network/networkSecurityPerimeters/write",
"Microsoft.Network/networkSecurityPerimeters/delete",
"Microsoft.Network/networkSecurityPerimeters/profiles/read",
"Microsoft.Network/networkSecurityPerimeters/profiles/write",
"Microsoft.Network/networkSecurityPerimeters/profiles/delete",
"Microsoft.Network/networkSecurityPerimeters/profiles/accessRules/read",
"Microsoft.Network/networkSecurityPerimeters/profiles/accessRules/write",
"Microsoft.Network/networkSecurityPerimeters/profiles/accessRules/delete",
"Microsoft.Network/networkSecurityPerimeters/resourceAssociations/read",
"Microsoft.Network/networkSecurityPerimeters/resourceAssociations/write",
"Microsoft.Network/networkSecurityPerimeters/resourceAssociations/delete"
],
"notActions": [],
"dataActions": [],
"notDataActions": [],
"Condition": "((!(ActionMatches{'Microsoft.Authorization/roleAssignments/write'})) OR (@Request[Microsoft.Authorization/roleAssignments:RoleDefinitionId] ForAnyOfAnyValues:GuidEquals{ba92f5b4-2d11-453d-a403-e96b0029c9fe, 2a2b9908-6ea1-4ae2-8e65-a410df84e7d1, 5bd9cd88-fe45-4216-938b-f97437e15450, 230815da-be43-4aae-9cb4-875f7bd000aa, 4d97b98b-1d4f-4787-a291-c67834d212e7})) AND ((!(ActionMatches{'Microsoft.Authorization/roleAssignments/delete'})) OR (@Resource[Microsoft.Authorization/roleAssignments:RoleDefinitionId] ForAnyOfAnyValues:GuidEquals{ba92f5b4-2d11-453d-a403-e96b0029c9fe, 2a2b9908-6ea1-4ae2-8e65-a410df84e7d1, b24988ac-6180-42a0-ab88-20f7382dd24c, 5bd9cd88-fe45-4216-938b-f97437e15450, 230815da-be43-4aae-9cb4-875f7bd000aa, 4d97b98b-1d4f-4787-a291-c67834d212e7}))",
"ConditionVersion": "2.0"
}
],
"createdOn": "2024-07-16T15:12:09.853Z",
"updatedOn": "2025-10-01T15:36:17.02Z",
"createdBy": null,
"updatedBy": null
},
"id": "/providers/Microsoft.Authorization/roleDefinitions/b7ef99e8-10af-4a7c-8b15-5b6c352a8378",
"type": "Microsoft.Authorization/roleDefinitions",
"name": "b7ef99e8-10af-4a7c-8b15-5b6c352a8378"
}
Effective Permissions
Operations granted by this role (355 total)
Conditional Permissions
This role has conditions that may restrict effective permissions based on context (e.g., resource attributes, request properties).
Permission Patterns (from role definition)
Actions
191 patterns
Microsoft.Network/*/join/action
Microsoft.ManagedIdentity/userAssignedIdentities/*/read
Microsoft.ManagedIdentity/userAssignedIdentities/*/assign/action
Microsoft.Authorization/*/read
Microsoft.Insights/alertRules/*
Microsoft.Resources/deployments/*
Microsoft.Resources/subscriptions/resourceGroups/read
microsoft.insights/metrics/read
microsoft.Compute/virtualMachineScaleSets/networkInterfaces/read
Microsoft.ElasticSan/locations/asyncoperations/read
Microsoft.ElasticSan/elasticSans/PrivateEndpointConnectionsApproval/action
Microsoft.ElasticSan/skus/read
Microsoft.ElasticSan/operations/read
Microsoft.ElasticSan/elasticSans/read
Microsoft.ElasticSan/elasticSans/write
Microsoft.ElasticSan/elasticSans/delete
Microsoft.ElasticSan/elasticSans/volumegroups/read
Microsoft.ElasticSan/elasticSans/volumegroups/write
Microsoft.ElasticSan/elasticSans/volumegroups/delete
Microsoft.ElasticSan/elasticSans/volumegroups/volumes/read
Microsoft.ElasticSan/elasticSans/volumegroups/volumes/write
Microsoft.ElasticSan/elasticSans/volumegroups/volumes/delete
Microsoft.VirtualMachineImages/locations/operations/read
Microsoft.VirtualMachineImages/imageTemplates/write
Microsoft.VirtualMachineImages/imageTemplates/run/action
Microsoft.VirtualMachineImages/imageTemplates/read
Microsoft.Storage/storageAccounts/write
Microsoft.Storage/storageAccounts/sharedIdentities/write
Microsoft.Storage/storageAccounts/sharedIdentities/read
Microsoft.Storage/storageAccounts/regenerateKey/action
Microsoft.Storage/storageAccounts/read
Microsoft.Storage/storageAccounts/privateEndpointConnections/read
Microsoft.Storage/storageAccounts/listKeys/action
Microsoft.Storage/storageAccounts/delete
Microsoft.Storage/storageAccounts/blobServices/containers/write
Microsoft.Storage/register/action
Microsoft.Storage/operations/read
Microsoft.Storage/locations/usages/read
Microsoft.Storage/checkNameAvailability/read
Microsoft.Sql/register/action
Microsoft.ServiceFabric/register/action
Microsoft.ServiceFabric/locations/operations/read
Microsoft.ServiceFabric/locations/operationResults/read
Microsoft.ServiceFabric/clusters/write
Microsoft.ServiceFabric/clusters/read
Microsoft.ServiceFabric/clusters/delete
Microsoft.Security/assessments/read
Microsoft.Resources/tags/write
Microsoft.Resources/tags/read
Microsoft.Resources/subscriptions/resourcegroups/write
Microsoft.Resources/subscriptions/resourcegroups/read
Microsoft.Resources/subscriptions/resourceGroups/write
Microsoft.Resources/subscriptions/resourceGroups/resources/read
Microsoft.Resources/subscriptions/resourceGroups/read
Microsoft.Resources/subscriptions/resourceGroups/moveResources/action
Microsoft.Resources/subscriptions/read
Microsoft.Resources/subscriptions/providers/read
Microsoft.Resources/subscriptions/operationresults/read
Microsoft.Resources/deployments/write
Microsoft.Resources/deployments/validate/action
Microsoft.Resources/deployments/read
Microsoft.Resources/deployments/operations/read
Microsoft.Resources/deployments/operationStatuses/read
Microsoft.Resources/deployments/delete
Microsoft.Subscription/cancel/action
Microsoft.Network/virtualNetworks/write
Microsoft.Network/virtualNetworks/virtualNetworkPeerings/write
Microsoft.Network/virtualNetworks/virtualNetworkPeerings/read
Microsoft.Network/virtualNetworks/virtualNetworkPeerings/delete
Microsoft.Network/virtualNetworks/subnets/write
Microsoft.Network/virtualNetworks/subnets/read
Microsoft.Network/virtualNetworks/subnets/delete
Microsoft.Network/virtualNetworks/read
Microsoft.Network/virtualNetworks/delete
Microsoft.Network/virtualNetworkGateways/delete
Microsoft.Network/trafficmanagerprofiles/*
Microsoft.Network/routeTables/write
Microsoft.Network/routeTables/delete
Microsoft.Network/register/action
Microsoft.Network/publicIPAddresses/write
Microsoft.Network/publicIPAddresses/read
Microsoft.Network/publicIPAddresses/delete
Microsoft.Network/privateEndpoints/write
Microsoft.Network/privateEndpoints/read
Microsoft.Network/privateEndpoints/privateDnsZoneGroups/write
Microsoft.Network/privateEndpoints/delete
Microsoft.Network/privateDnsOperationStatuses/read
Microsoft.Network/networkWatchers/read
Microsoft.Network/networkSecurityGroups/write
Microsoft.Network/networkSecurityGroups/securityRules/write
Microsoft.Network/networkSecurityGroups/securityRules/read
Microsoft.Network/networkSecurityGroups/read
Microsoft.Network/networkSecurityGroups/delete
Microsoft.Network/networkInterfaces/read
Microsoft.Network/locations/operations/read
Microsoft.Network/locations/operationResults/read
Microsoft.Network/loadBalancers/write
Microsoft.Network/loadBalancers/read
Microsoft.Network/loadBalancers/delete
Microsoft.Network/azureFirewalls/write
Microsoft.Network/azureFirewalls/read
Microsoft.Network/azureFirewalls/delete
Microsoft.Network/VirtualNetworkGateways/write
Microsoft.Network/VirtualNetworkGateways/read
Microsoft.Network/privateDnsZones/*
Microsoft.ManagedIdentity/userAssignedIdentities/write
Microsoft.ManagedIdentity/userAssignedIdentities/read
Microsoft.ManagedIdentity/userAssignedIdentities/delete
Microsoft.MachineLearningServices/locations/registryOperationsStatus/read
Microsoft.Insights/register/action
Microsoft.EventHub/register/action
Microsoft.EventHub/namespaces/read
Microsoft.EventHub/namespaces/delete
Microsoft.EventHub/locations/namespaceOperationResults/read
Microsoft.DocumentDB/locations/operationsStatus/read
Microsoft.DocumentDB/databaseAccounts/write
Microsoft.DocumentDB/databaseAccounts/read
Microsoft.DocumentDB/databaseAccounts/failoverPriorityChange/action
Microsoft.DocumentDB/databaseAccounts/delete
Microsoft.Compute/virtualMachineScaleSets/write
Microsoft.Compute/virtualMachineScaleSets/virtualMachines/write
Microsoft.Compute/virtualMachineScaleSets/virtualMachines/read
Microsoft.Compute/virtualMachineScaleSets/virtualMachines/instanceView/read
Microsoft.Compute/virtualMachineScaleSets/start/action
Microsoft.Compute/virtualMachineScaleSets/reimage/action
Microsoft.Compute/virtualMachineScaleSets/read
Microsoft.Compute/virtualMachineScaleSets/instanceView/read
Microsoft.Compute/virtualMachineScaleSets/extensions/read
Microsoft.Compute/virtualMachineScaleSets/delete/action
Microsoft.Compute/virtualMachineScaleSets/delete
Microsoft.Compute/virtualMachineScaleSets/deallocate/action
Microsoft.Compute/register/action
Microsoft.Compute/locations/operations/read
Microsoft.Compute/locations/capsOperations/read
Microsoft.Compute/locations/DiskOperations/read
Microsoft.Compute/galleries/write
Microsoft.Compute/galleries/read
Microsoft.Compute/galleries/images/write
Microsoft.Compute/galleries/images/read
Microsoft.Compute/disks/write
Microsoft.Compute/disks/read
Microsoft.Compute/disks/delete
Microsoft.ClassicStorage/storageAccounts/validateMigration/action
Microsoft.ClassicStorage/storageAccounts/prepareMigration/action
Microsoft.ClassicStorage/storageAccounts/operationStatuses/read
Microsoft.ClassicStorage/storageAccounts/listKeys/action
Microsoft.ClassicStorage/storageAccounts/commitMigration/action
Microsoft.ClassicStorage/storageAccounts/abortMigration/action
Microsoft.ClassicNetwork/virtualNetworks/read
Microsoft.ClassicNetwork/register/action
Microsoft.Chaos/targets/write
Microsoft.Chaos/targets/capabilities/write
Microsoft.Chaos/register/action
Microsoft.Chaos/experiments/write
Microsoft.Authorization/roleAssignments/write
Microsoft.Authorization/roleAssignments/delete
Microsoft.Authorization/locks/delete
Microsoft.Authorization/locks/write
Microsoft.Network/dnsZones/*
Microsoft.Compute/galleries/images/versions/read
Microsoft.Network/firewallPolicies/ruleCollectionGroups/write
Microsoft.Network/locations/*/read
Microsoft.DocumentDB/databaseAccounts/privateEndpointConnectionsApproval/action
Microsoft.Storage/storageAccounts/PrivateEndpointConnectionsApproval/action
Microsoft.Network/virtualNetworks/peer/action
Microsoft.DocumentDB/databaseAccounts/listKeys/action
Microsoft.DocumentDB/databaseAccounts/sqlDatabases/containers/write
Microsoft.DocumentDB/databaseAccounts/sqlDatabases/write
Microsoft.DocumentDB/databaseAccounts/sqlRoleAssignments/write
Microsoft.ClassicStorage/storageAccounts/read
Microsoft.Resources/subscriptions/resourcegroups/delete
Microsoft.Storage/storageAccounts/blobServices/containers/delete
Microsoft.Storage/storageAccounts/blobServices/read
Microsoft.Storage/storageAccounts/blobServices/write
Microsoft.VirtualMachineImages/imageTemplates/delete
Microsoft.Network/firewallPolicies/write
Microsoft.Batch/register/action
Microsoft.ElasticSan/register/action
Microsoft.VirtualMachineImages/register/action
Microsoft.Network/networkSecurityPerimeters/read
Microsoft.Network/networkSecurityPerimeters/write
Microsoft.Network/networkSecurityPerimeters/delete
Microsoft.Network/networkSecurityPerimeters/profiles/read
Microsoft.Network/networkSecurityPerimeters/profiles/write
Microsoft.Network/networkSecurityPerimeters/profiles/delete
Microsoft.Network/networkSecurityPerimeters/profiles/accessRules/read
Microsoft.Network/networkSecurityPerimeters/profiles/accessRules/write
Microsoft.Network/networkSecurityPerimeters/profiles/accessRules/delete
Microsoft.Network/networkSecurityPerimeters/resourceAssociations/read
Microsoft.Network/networkSecurityPerimeters/resourceAssociations/write
Microsoft.Network/networkSecurityPerimeters/resourceAssociations/delete
Control Plane Operations (355)
No matching operations
/ shown
Data Plane Operations (0)
No data plane operations granted